CVE-2014-2894

Priority

Medium

Description

Off-by-one error in the cmd_smart function in the smart self test inhw/ide/core.c in QEMU before 2.0 allows local users to have unspecifiedimpact via a SMART EXECUTE OFFLINE command that triggers a buffer underflowand memory corruption.